Unknown files ignored but not completely

  • Resolved CGItaly s.r.l.

    (@consultingroupitaly)


    3 years, 8 months ago

    Hi,
    I have some files ignored and it works fine in the website itself but periodically I receive an e-mail notification that say that there are 4 unknown files but clicking on the link always point to a page that say “The previous scan either didn’t detect any items that require your attention or they’ve already been repaired.” (probably because they are the ignored files).
    I have received the same notification at least 10 times over the time so it isn’t an isolate issue.

    What to do?

    Best regards.

Viewing 13 replies - 1 through 13 (of 13 total)
  • Plugin Author Paul

    (@paultgoodchild)

    We’ve been working on the scanner repair results and logging for the next release, (11.5) due out on Monday or Tuesday of next week. The audit trail and the reporting emails will have more information in them and they’ll generally be more reliable and easier to find the information you need.

    Can you upgrade when that comes out and monitor how things go from there and let us know what you see with the improvements in place?

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    In the audit trail I get:
    1) `C’è stato un tentativo di invio di una email utilizzando la funzione “wp_mail”.
    Questa voce del registro non significa che è stata inviata o ricevuta con successo, ma solo che è stato effettuato un tentativo.
    è stato inviato a “***” con l’oggetto “[Dreamspace by CGItaly s.r.l.] Site Report – Shield Security”.
    CC/BCC Recipients: – / –
    La funzione “wp_mail” è stata richiamata dal file “wp-content/plugins/wp-simple-firewall/src/lib/src/Modules/Email/Processor.php” alla riga 122.
    L’articolo intitolato “[Dreamspace by CGItaly s.r.l.] Site Report – Shield Security” è stato pubblicato.
    Post Type: postman_sent_mail`

    2) `File Sconosciuti scansione completata e stati scoperti degli oggetti.
    Nota: Questi oggetti non verranno mostrati nei risultati se li hai già segnati come ignorati.`

    This doesn’t explain the 4 files reported in the e-mail.
    I will try the new version once it is released and report back, thanks.

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    I have received a Site Report with the new version and the problems seems fixed, I will report again if it reappears in the future, thanks.

    Plugin Author Paul

    (@paultgoodchild)

    Great stuff! Thanks for reporting back ??

    May I ask, if you’re liking Shield so far, would you be open to leaving us a review of your experience? ??

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    I have already left a good review in the past, it doesn’t allow to make another one.

    Plugin Author Paul

    (@paultgoodchild)

    ahh okay, no worries. Thank you so much! ??

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    @paultgoodchild
    Hi,
    now I get it again but this time:
    – The e-mail say that there are 2 unknown files
    – “View Scan Results Details” link point to a page that says that there aren’t any unknown file
    – Instead audit trail list 3 unknown files.

    The files listed in the audit trails are the 3 empty index.php created by the backwpup plug-in to prevent folder listing.
    So there are mainly 2 problems:
    – The difference count of 2 vs 3
    – If there are only files that are ignored it shouldn’t send the e-mail at all.

    Best regards.

    Plugin Author Paul

    (@paultgoodchild)

    – Are you running the latest version of Shield (11.4.5)?

    – Did you review the results immediately after the scan? ie. could another subsequent scan have run to modify results?

    Also, currently, the audit trail listing will always list some results, whether they’re ignored or not, but if they’re ignored, they wont show on the scan results page.

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    I’m using Shield Security 11.5.4

    Now I get it, the scan was today at 04:14 AM but instead the e-mail was at 00:14 AM so it was probably referring to the previous scan.
    And the previous scan of yesterday list 5 files and 2 of 5 are probably files created only during the backup work, these:
    – wp-content/uploads/backwpup-[letter and numbers]-temp/backwpup-working.php
    – wp-content/uploads/backwpup-[letter and numbers]-temp/backwpup-[letter and numbers]-folder.php

    So the only solution for me is exclude also these, since probably there isn’t a better solution.
    Thanks.

    PS: If possible it would be better to move the sending of the alerting e-mail after the scans (maybe at 05:14 AM) to avoid confusion.

    Plugin Author Paul

    (@paultgoodchild)

    It’s down to the timing of your reporting settings. Can you check that you have alerts to be sent hourly and not daily?

    If it’s set to daily, then the email will be sent upon the next scheduled email send, regardless of when the scans took place.

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    Thanks for the reply.
    Alerts are daily but this is fine for me.
    Is it possible to postpone the scheduled email send or alternatively anticipate the time of the daily scans?

    Plugin Author Paul

    (@paultgoodchild)

    Nope, scans and reports are deliberately decoupled. It allows for much more flexibility when sending schedulded reports which is itself quite complex.

    We may yet integrate some form of “alerting” system into the scans that’s separate from the reports.

    Thread Starter CGItaly s.r.l.

    (@consultingroupitaly)

    I’m fine with having them separated but if the hour of daily scans would be just about 1 or 2 hour earlier of daily email reportings it would just make things easier.

Viewing 13 replies - 1 through 13 (of 13 total)
  • The topic ‘Unknown files ignored but not completely’ is closed to new replies.